Lucene search
+L

463 matches found

RedhatCVE
RedhatCVE
added 2026/04/07 11:1 p.m.5 views

CVE-2026-35389

Bulwark Webmail is a self-hosted webmail client for Stalwart Mail Server. Prior to 1.4.11, S/MIME signature verification did not validate the certificate trust chain checkChain: false. Any email signed with a self-signed or untrusted certificate was displayed as having a valid signature. This...

8.7CVSS5.9AI score0.00177EPSS
Exploits0References1
NVD
NVD
added 2026/04/06 9:16 p.m.9 views

CVE-2026-35389

Bulwark Webmail is a self-hosted webmail client for Stalwart Mail Server. Prior to 1.4.11, S/MIME signature verification did not validate the certificate trust chain checkChain: false. Any email signed with a self-signed or untrusted certificate was displayed as having a valid signature. This...

8.7CVSS0.00177EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/04/06 8:11 p.m.4 views

CVE-2026-35389 Bulwark Webmail S/MIME signature verification accepted self-signed certificates

Bulwark Webmail is a self-hosted webmail client for Stalwart Mail Server. Prior to 1.4.11, S/MIME signature verification did not validate the certificate trust chain checkChain: false. Any email signed with a self-signed or untrusted certificate was displayed as having a valid signature. This...

8.7CVSS5.9AI score0.00177EPSS
Exploits0References1
EUVD
EUVD
added 2026/04/06 8:11 p.m.9 views

EUVD-2026-19478

Bulwark Webmail is a self-hosted webmail client for Stalwart Mail Server. Prior to 1.4.11, S/MIME signature verification did not validate the certificate trust chain checkChain: false. Any email signed with a self-signed or untrusted certificate was displayed as having a valid signature. This...

8.7CVSS5.9AI score0.00177EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/04/06 8:11 p.m.22 views

CVE-2026-35389 Bulwark Webmail S/MIME signature verification accepted self-signed certificates

Bulwark Webmail is a self-hosted webmail client for Stalwart Mail Server. Prior to 1.4.11, S/MIME signature verification did not validate the certificate trust chain checkChain: false. Any email signed with a self-signed or untrusted certificate was displayed as having a valid signature. This...

8.7CVSS0.00177EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/04/06 8:11 p.m.7 views

CVE-2026-35389

Bulwark Webmail is a self-hosted webmail client for Stalwart Mail Server. Prior to 1.4.11, S/MIME signature verification did not validate the certificate trust chain checkChain: false. Any email signed with a self-signed or untrusted certificate was displayed as having a valid signature. This...

8.7CVSS5.9AI score0.00177EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2026/04/06 8:11 p.m.3 views

CVE-2026-35389 Bulwark Webmail S/MIME signature verification accepted self-signed certificates

Bulwark Webmail is a self-hosted webmail client for Stalwart Mail Server. Prior to 1.4.11, S/MIME signature verification did not validate the certificate trust chain checkChain: false. Any email signed with a self-signed or untrusted certificate was displayed as having a valid signature. This...

8.7CVSS5.9AI score0.00177EPSS
Exploits0References3
CVE
CVE
added 2026/04/06 8:11 p.m.18 views

CVE-2026-35389

CVE-2026-35389 affects Bulwark Webmail (self-hosted client for Stalwart Mail Server). Before version 1.4.11, S/MIME signature verification did not validate the certificate trust chain (checkChain: false), causing emails signed with self-signed or untrusted certificates to appear as having a valid...

8.7CVSS5.9AI score0.00177EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2026/04/06 12:0 a.m.10 views

PT-2026-30727

Bulwark Webmail is a self-hosted webmail client for Stalwart Mail Server. Prior to 1.4.11, S/MIME signature verification did not validate the certificate trust chain checkChain: false. Any email signed with a self-signed or untrusted certificate was displayed as having a valid signature. This...

8.7CVSS5.9AI score0.00177EPSS
Exploits0References2
Fedora
Fedora
added 2026/03/28 12:19 a.m.6 views

[SECURITY] Fedora 44 Update: rust-webpki-root-certs-1.0.6-1.fc44

Mozilla trusted certificate authorities in self-signed X.509 format for use with crates other than webpki...

5.8AI score
Exploits0
NVD
NVD
added 2026/03/21 1:17 a.m.5 views

CVE-2026-32042

OpenClaw versions 2026.2.22 prior to 2026.2.25 contain a privilege escalation vulnerability allowing unpaired device identities to bypass operator pairing requirements and self-assign elevated operator scopes including operator.admin. Attackers with valid shared gateway authentication can present...

8.8CVSS0.00439EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/03/21 12:42 a.m.6 views

CVE-2026-32042

OpenClaw versions 2026.2.22 prior to 2026.2.25 contain a privilege escalation vulnerability allowing unpaired device identities to bypass operator pairing requirements and self-assign elevated operator scopes including operator.admin. Attackers with valid shared gateway authentication can present...

8.8CVSS5.8AI score0.00439EPSS
Exploits0References4Affected Software1
RedhatCVE
RedhatCVE
added 2026/02/26 10:35 p.m.8 views

CVE-2025-67601

A vulnerability has been identified within Rancher Manager, where using self-signed CA certificates and passing the -skip-verify flag to the Rancher CLI login command without also passing the –cacert flag results in the CLI attempting to fetch CA certificates stored in Rancher’s setting cacerts...

8.3CVSS5.3AI score0.00153EPSS
Exploits0References1
NVD
NVD
added 2026/02/25 11:16 a.m.9 views

CVE-2025-67601

A vulnerability has been identified within Rancher Manager, where using self-signed CA certificates and passing the -skip-verify flag to the Rancher CLI login command without also passing the –cacert flag results in the CLI attempting to fetch CA certificates stored in Rancher’s setting cacerts...

8.3CVSS0.00153EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/02/25 10:36 a.m.4 views

CVE-2025-67601 Rancher CLI skips TLS verification on Rancher CLI login command

A vulnerability has been identified within Rancher Manager, where using self-signed CA certificates and passing the -skip-verify flag to the Rancher CLI login command without also passing the –cacert flag results in the CLI attempting to fetch CA certificates stored in Rancher’s setting cacerts...

8.3CVSS5.3AI score0.00153EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/02/25 10:36 a.m.4 views

CVE-2025-67601

A vulnerability has been identified within Rancher Manager, where using self-signed CA certificates and passing the -skip-verify flag to the Rancher CLI login command without also passing the –cacert flag results in the CLI attempting to fetch CA certificates stored in Rancher’s setting cacerts...

8.3CVSS5.3AI score0.00153EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2026/02/25 10:36 a.m.26 views

CVE-2025-67601

CVE-2025-67601 – Rancher CLI TLS verification bypass : Multiple sources confirm a vulnerability in Rancher CLI login where using self-signed CA certificates with -skip-verify and without --cacert can cause the CLI to fetch CA certs from Rancher’s cacerts setting, enabling potential information ex...

8.3CVSS5.3AI score0.00153EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2026/02/25 10:36 a.m.12 views

CVE-2025-67601 Rancher CLI skips TLS verification on Rancher CLI login command

A vulnerability has been identified within Rancher Manager, where using self-signed CA certificates and passing the -skip-verify flag to the Rancher CLI login command without also passing the –cacert flag results in the CLI attempting to fetch CA certificates stored in Rancher’s setting cacerts...

8.3CVSS5.8AI score0.00153EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/02/25 10:36 a.m.29 views

CVE-2025-67601 Rancher CLI skips TLS verification on Rancher CLI login command

A vulnerability has been identified within Rancher Manager, where using self-signed CA certificates and passing the -skip-verify flag to the Rancher CLI login command without also passing the –cacert flag results in the CLI attempting to fetch CA certificates stored in Rancher’s setting cacerts...

8.3CVSS0.00153EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/02/25 12:0 a.m.8 views

SUSE Rancher 信任管理问题漏洞

SUSE Rancher is a Kubernetes management platform developed by the German company SUSE. SUSE Rancher has a vulnerability related to trust management. This vulnerability arises from the use of self-signed CA certificates and the passing of the -skip-verify flag to the Rancher CLI login command...

8.3CVSS5.8AI score0.00153EPSS
Exploits0References2
Rows per page
Query Builder